Ubuntu
nginx package

  1. Precise (12.04)
  2. Bug #956150
  3. Comment #23

Comment 23 for bug 956150

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package nginx - 1.0.5-1ubuntu0.1

---------------
nginx (1.0.5-1ubuntu0.1) oneiric-security; urgency=low

  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).
 -- Thomas Ward <email address hidden> Tue, 12 Jun 2012 12:52:27 -0400